I.

Basic Provisions

1. The data controller (hereinafter referred to as the “Controller”) in accordance with Article 4(7) of Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons concerning the processing of personal data and on the free movement of such data (General Data Protection Regulation, GDPR) is ST Global Trade s.r.o., Company ID: 52137384, with its registered office at Vyšehradská 12, 851 06 Bratislava, registered in the Commercial Register of the Bratislava III District Court, Section Sro, Insert No. 137424/B.
2. Contact details of the Controller:
   • Registered office: Vyšehradská 12, 851 06 Bratislava
   • E-mail: kancelaria@stglobal.sk
   • Phone: +421 915 771 592
3. Personal data refers to all information about an identified or identifiable natural person. An identifiable natural person is a person who can be directly or indirectly identified, especially by reference to an identifier, such as a name, identification number, location data, online identifier, or one or more specific elements of physical, physiological, genetic, mental, economic, cultural, or social identity.

II.

Sources and Categories of Processed Personal Data

1. The Controller processes personal data provided by you or obtained through the performance of your order:
   • Name and surname
   • Email address
   • Phone number
   • Organization name
   • Website
   • Message
2. The Controller processes identification and contact data and data necessary for fulfilling the contract.

III.

Legal Reason and Purpose of Personal Data Processing

1. The legal reasons for processing personal data are:
   • Fulfillment of the contract between you and the Controller in accordance with Article 6(1)(b) GDPR,
   • Fulfillment of legal obligations by the Controller under Article 6(1)(c) GDPR,
   • The legitimate interest of the Controller in providing direct marketing (especially for sending commercial offers and newsletters) under Article 6(1)(f) GDPR,
   • Your consent to the processing of personal data for direct marketing purposes under Article 6(1)(a) GDPR if goods or services were ordered.
2. The purposes of processing personal data are:
   • Processing your order and exercising rights and obligations arising from the contractual relationship between you and the Controller. Providing personal data is a necessary requirement for concluding the contract, and without it, the contract cannot be concluded or fulfilled by the Controller.
   • Compliance with legal obligations towards the state.
   • Sending commercial offers and performing other marketing activities.

IV.

Retention Period of Personal Data

1. The Controller retains personal data:
   • For the necessary duration to exercise rights and obligations from the contractual relationship (15 years from the end of the contractual relationship).
2. After the retention period expires, the Controller deletes the personal data.

V.

Recipients of Personal Data (Controller’s Subcontractors)

1. Recipients of personal data include:
   • Parties involved in service delivery and payment processing under the contract.
   • Providers of website management and other related services.

VI.

Processors of Personal Data

1. Personal data may be processed by the Controller or authorized processors, such as:
   • Providers of Google Ads and Google Analytics services,
   • Other software or application providers currently not utilized by the Controller.

VII.

Your Rights

1. Under GDPR, you have the right to:
   • Access your personal data (Article 15 GDPR).
   • Rectify inaccurate personal data (Article 16 GDPR).
   • Request the deletion of personal data (Article 17 GDPR).
   • Object to processing (Article 21 GDPR).
   • Data portability (Article 20 GDPR).
   • Withdraw consent to processing personal data by writing to the address or email mentioned in Article I, Point 2.

VIII.

Conditions for Securing Personal Data

1. The Controller declares that it has taken all appropriate technical and organizational measures to secure personal data.
2. The Controller has implemented technical measures to secure data storage and personal data repositories.
3. The Controller declares that access to personal data is restricted to authorized persons only.

IX.

Use of Cookies

1. Cookies are text files containing small amounts of information that are downloaded to your device when you visit our website. These files are then sent back to the website or another website that recognizes them during subsequent visits.
2. Cookies perform various functions, such as enabling efficient navigation between pages, remembering your preferences, and generally improving the user experience. They can also ensure that online advertisements are better tailored to your interests.
3. On our website, we use the following types of cookies:
   • Necessary cookies: Essential for the basic functioning of the website. These cookies do not store any personally identifiable information.
   • Functional cookies: Help perform certain functionalities, such as sharing website content on social media platforms or gathering feedback.
   • Analytical/Statistical cookies: Help us understand how visitors interact with the website, including anonymous data on traffic and behavior.
   • Advertising cookies: Used to deliver tailored advertisements based on your browsing history and to measure the effectiveness of advertising campaigns.
4. Please note that third parties (including external service providers) may also use cookies on our website.
5. Detailed information about cookies and their management can be found in the developer tools of your browser.
6. Consent to the use of cookies can be given through the cookie banner on the website. You can also refuse or adjust the use of cookies later in your browser settings.
7. For more information on managing cookies in specific browsers, visit:
   • Internet Explorer: Microsoft Support – Delete Manage Cookies
   • Google Chrome: Google Support – Manage Cookies
   • Firefox: Mozilla Support – Cookies
   • Safari: Apple Support – Safari Guide
   • Opera: Opera Support – Security and Privacy
   • Microsoft Edge: Microsoft Documentation – Browser Profiles

X.

Final Provisions

1. By submitting an order through the online order form, you confirm that you have read and fully agree to this Privacy Policy.
2. You agree to these terms by ticking the consent box provided in the online form. By ticking the box, you confirm that you have read and fully accept the Privacy Policy.
3. The Controller reserves the right to amend these terms. A new version of the Privacy Policy will be published on the Controller’s website and sent to the email address you have provided.

This Privacy Policy takes effect on 01.07.2024.